CVE-2006-6101 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-6101
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-6101

Description: Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data structures.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/31337 UBUNTU http://www.ubuntu.com/usn/usn-403-1 SUSE http://www.novell.com/linux/security/advisories/2007_08_x.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102803-1 ST 1017495 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.393555 SAID Secunia Advisory: SA24401 Secunia Advisory: SA24247 Secunia Advisory: SA24210 Secunia Advisory: SA24168 Secunia Advisory: SA23966 Secunia Advisory: SA23789 Secunia Advisory: SA23758 Secunia Advisory: SA23633 Secunia Advisory: SA23670 Secunia Advisory: SA23684 Secunia Advisory: SA23689 Secunia Advisory: SA23698 Secunia Advisory: SA23705 Secunia Advisory: SA25802 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0002.html http://www.redhat.com/support/errata/RHSA-2007-0003.html OSVDB 32084 NETBSD http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-002.txt.asc MLIST http://lists.freedesktop.org/archives/xorg-announce/2007-January/000235.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:005 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=463 HP http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01075678 GENTOO http://security.gentoo.org/glsa/glsa-200701-25.xml DEBIAN http://lists.debian.org/debian-security-announce/debian-security-announce-2007/msg00004.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-074.htm http://support.avaya.com/elmodocs2/security/ASA-2007-066.htm BID 21968

Return to the previous page.